RE: Anyone know this ?

From: Christian Kopacsi (ckopacsi_at_cmhcm.org)
Date: 03/19/04

  • Next message: Rob Shein: "RE: Evading IDS?" 
    To: "tester pen" <apentester@yahoo.com.cn>, <pen-test@securityfocus.com>
Date: Fri, 19 Mar 2004 12:05:12 -0500

    Look here for some information I found on it

    http://www.deakin.edu.au/infosys/docs/seminars/handouts/RichardBraithwaite.p
    df

    http://www.mynetwatchman.com/kb/security/Articles/WinForensics/

    Christian Kopacsi
    CCNA CEH Security+ MCSE MCP+I
    A+ CSSA ASE AIS CCA CNA
    Community Mental Health for Central Michigan
    Information Systems
    989-837-0728
    ckopacsi@cmhcm.org

    -----Original Message-----
    From: tester pen [mailto:apentester@yahoo.com.cn]
    Sent: Friday, March 19, 2004 2:37 AM
    To: pen-test@securityfocus.com
    Subject: Anyone know this ?

    hi,all.
    when i'm doing a pen-test on a win2k server box,i
    found a port TCP 282
    is open,and when i try to telnet it,the response is
    below:

    220-welcome to this capricorn pubstro!
    220-...:::...:::...:::...:::...:::...:::...:::...:::...:::...:::...:::...:::
    ...:
    ::...:
    220-..::
    220-..:: Welcome @ This
    220-..::
    220-..:: Capricorn PubStro
    220-..::
    220-..:: 3njoy
    220-..::
    220-...:::...:::...:::...:::...:::...:::...:::...:::...:::...:::...:::...:::
    ...:
    ::...:
    220-..::
    220-..:: Rulez:
    220-..:: Dont Hammer
    220-..:: Dont ReHack
    220-..:: Dont Scan This IP Range
    220-..:: Dont Delete
    220-..:: No Lame One-Word Relies
    220-..:: Dont RePost Or Give Infos - That Makes You A
    Lamer
    220-..:: Have Fun
    220-..::
    220-...:::...:::...:::...:::...:::...:::...:::...:::...:::...:::...:::...:::
    ...:
    ::...:
    220-..::
    220-..:: Current Uptime .................: 37 Days, 9
    Hours, 26
    Minutes, 24 Sec
    onds
    220-..:: Total KB's Uploaded ..........: 94 KB
    220-..:: Total KB's Downloaded ......: 0 KB
    220-..:: Total File's Uploaded .......: 2
    220-..:: Total File's Downloaded .....: 0
    220-..:: Average Throughput .......: 0.000 KB/sec
    220-..:: Current Bandwith .............: 0.000 KB/sec
    220-..:: No Users Logged In .........: 1
    220-..:: Max Allowed Users ...........: -1
    220-..:: No Total users ................: 1
    220-..::
    220-...:::...:::...:::...:::...:::...:::...:::...:::...:::...:::...:::...:::
    ...:
    ::...:
    220-..::
    220-..:: 15992.90 MB free
    220-..:: 1 users connected
    220-..:: 0.000 KB/sec is in use
    220-..::
    220
    ...:::...:::...:::...:::...:::...:::...:::...:::...:::...:::...:::...:::...:
    ::...:
    421 Maximum session time exceeded - closing.

    i googled it,both about "TCP Port 282" & "Capricorn
    PubStro
    "(the keyword),but i got nothing :(

    it looks like a ftp server? 220,421
    anyone who recoganize this ?

    thx.
    sorry for my poor english.

    _________________________________________________________
    Do You Yahoo!?
    完全免费的雅虎电邮,马上注册获赠额外60兆网络存储空间
    http://cn.rd.yahoo.com/mail_cn/tag/?http://cn.mail.yahoo.com

    ---------------------------------------------------------------------------
    Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
    any course! All of our class sizes are guaranteed to be 10 students or less
    to facilitate one-on-one interaction with one of our expert instructors.
    Attend a course taught by an expert instructor with years of in-the-field
    pen testing experience in our state of the art hacking lab. Master the
    skills
    of an Ethical Hacker to better assess the security of your organization.
    Visit us at:
    http://www.infosecinstitute.com/courses/ethical_hacking_training.html
    ----------------------------------------------------------------------------

    ---------------------------------------------------------------------------
    Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
    any course! All of our class sizes are guaranteed to be 10 students or less
    to facilitate one-on-one interaction with one of our expert instructors.
    Attend a course taught by an expert instructor with years of in-the-field
    pen testing experience in our state of the art hacking lab. Master the skills
    of an Ethical Hacker to better assess the security of your organization.
    Visit us at:
    http://www.infosecinstitute.com/courses/ethical_hacking_training.html
    ----------------------------------------------------------------------------

  • Next message: Rob Shein: "RE: Evading IDS?"

    Relevant Pages

    • RE: Minimum password requirements
      ... say it risks decreasing security rather than improving it. ... > Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ...
      (Security-Basics)
    • RE: ISA Server Crash
      ... Asunto: RE: ISA Server Crash ... Astaro Security Linux, the comprehensive security solution that combines six ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ...
      (Security-Basics)
    • Re: process identification
      ... IT Technical Security Officer ... the computer has an open port with a listening ftp-server, but there is no matching PID with netstat. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. ...
      (Security-Basics)
    • RE: Minimum password requirements
      ... I'd say it risks decreasing security rather than ... >> Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ...
      (Security-Basics)
    • RE: Wireless LAN Security for Warehouse
      ... Security Consultant ... Wireless LAN Security for Warehouse ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ...
      (Security-Basics)